📦 Gitproxy

GitProxy versions 1.19.1 and below allow attackers to inject hidden commits into Git packs sent to GitHub. These commits don't appear in branch history but remain accessible via direct URLs, enabling ...

CVE-2025-54585 allows attackers with regular push access to bypass GitProxy's commit approval enforcement when creating new branches. This vulnerability affects all organizations using GitProxy versio...

GitProxy versions 1.19.1 and below contain an authorization bypass vulnerability that allows users to push code to remote repositories without triggering required policy checks or approvals. This coul...